This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa File: 710800d0-a544-4fe9-abd4-369c82fabbb3.roa (raw, json) Hash identifier: /9IRt2bu1XoaqBy9ts9qIAV8O0KcHTWFmB5SpQBG2R0= Subject key identifier: 89:50:40:86:9B:B4:22:BE:6C:20:3C:C9:1A:E2:10:A6:CA:67:F1:15 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 5506BD96D978135E5427885F41622A5B5539D6 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa Signing time: Sat 06 Dec 2025 00:00:35 +0000 ROA not before: Sat 06 Dec 2025 00:00:35 +0000 ROA not after: Fri 06 Mar 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:dafe:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 00:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:06:bd:96:d9:78:13:5e:54:27:88:5f:41:62:2a:5b:55:39:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: Dec 6 00:00:35 2025 GMT Not After : Mar 6 23:59:59 2026 GMT Subject: serialNumber=813a591aef9229ceebcca953ef35f9b351492e00a41054c0762533b478f07c38, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:a6:2c:b1:c5:10:24:28:48:e0:44:b2:19: 42:e1:9d:4b:47:ca:81:58:b5:9e:6e:2f:7e:ab:29: 6e:18:13:d1:c0:ef:0f:e1:ef:48:6b:4e:fd:f1:55: ee:65:a6:2f:f3:a7:b5:f7:e8:9d:92:f3:c4:0e:95: 42:9f:86:4b:37:df:1e:47:5f:7a:d7:8b:63:2e:82: bd:02:82:39:6e:49:91:a9:62:0f:eb:83:fa:62:68: 58:be:a0:3c:bb:e0:47:03:ea:86:df:f9:ed:c8:10: f8:ef:2a:32:af:c6:72:9e:a3:89:fb:b4:74:b9:76: 9a:0e:46:d7:3c:2d:54:49:3e:3c:8d:d1:d0:71:56: 94:a8:b0:94:9f:1b:3b:4c:41:10:32:dd:9c:73:67: 11:16:03:4b:1a:dd:30:1c:9f:e6:82:29:cc:0f:0b: c4:ae:28:f5:b7:1c:52:8d:73:b8:27:cc:2a:6d:d5: e0:58:ae:b7:d9:fa:1d:e7:10:7b:f0:43:65:a2:1b: b0:eb:c7:9b:82:78:46:e8:04:cd:9d:9d:4c:ca:f7: 51:f5:22:30:46:1b:da:d2:f1:d6:f7:34:e7:4b:77: 97:62:be:6b:b3:95:15:f5:d5:2e:ab:65:81:de:ff: 0d:cb:48:15:d3:b1:9f:83:d4:88:d4:be:1d:e4:a7: a4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:50:40:86:9B:B4:22:BE:6C:20:3C:C9:1A:E2:10:A6:CA:67:F1:15 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/710800d0-a544-4fe9-abd4-369c82fabbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:dafe:800::/40 Signature Algorithm: sha256WithRSAEncryption 06:65:14:59:8e:9e:54:2b:02:dc:86:24:a2:48:88:42:80:ad: 52:63:31:b9:b3:17:1c:18:d9:8a:0a:54:67:b8:36:00:0e:98: 13:bb:6b:72:2f:2c:95:91:aa:9c:27:e4:ac:83:08:cb:a4:37: e9:a7:ea:33:07:3e:af:8a:2d:5a:5a:26:fd:5a:40:5d:2c:58: b6:6d:07:8e:5f:f5:1c:af:aa:4b:29:60:74:52:53:8a:58:c8: 66:1d:13:a3:3f:b8:d4:76:f3:ae:48:12:2c:dc:7f:bb:fb:31: ab:84:a8:8c:88:c8:0e:2d:ad:59:38:33:4c:4e:bc:a0:e1:10: ea:18:19:0a:ef:94:f4:a8:de:f6:a7:2e:aa:cb:9b:54:b2:4e: 71:89:44:8b:c9:55:78:a2:33:d4:a4:c5:d7:28:a6:65:c6:43: 8c:76:4f:67:95:0c:cd:1a:a0:f2:69:23:a1:df:14:53:ab:87: 92:27:cd:82:3a:44:71:5e:33:05:e1:58:2e:6e:2b:be:b5:c9: 4b:02:51:52:34:29:ee:f6:b8:15:d7:4d:39:df:27:f5:4c:b9: cf:91:38:30:da:49:ea:25:ae:1b:0a:be:4c:e7:ee:3f:d4:2c: 42:f8:d0:b7:fd:dc:46:4e:03:ac:8d:0a:9f:70:71:f8:2b:67: fe:17:ef:ae -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgITVQa9ltl4E15UJ4hfQWIqW1U51jANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTFGNjM1RjAwMDAxMTAvBgNVBAUTKDQwNzY4MjU1MjRE MkM2NkQyRTEwNDM2RkU2NUU5M0U4QzFCRDRBMzcwHhcNMjUxMjA2MDAwMDM1WhcN MjYwMzA2MjM1OTU5WjB6MUkwRwYDVQQFE0A4MTNhNTkxYWVmOTIyOWNlZWJjY2E5 NTNlZjM1ZjliMzUxNDkyZTAwYTQxMDU0YzA3NjI1MzNiNDc4ZjA3YzM4MS0wKwYD VQQDEyRjMGJmMGZlOC03MTdjLTRmNzItOWI0NS1jOWM1MTkxMzJhODEwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99aYsscUQJChI4ESyGULhnUtHyoFY tZ5uL36rKW4YE9HA7w/h70hrTv3xVe5lpi/zp7X36J2S88QOlUKfhks33x5HX3rX i2Mugr0CgjluSZGpYg/rg/piaFi+oDy74EcD6obf+e3IEPjvKjKvxnKeo4n7tHS5 dpoORtc8LVRJPjyN0dBxVpSosJSfGztMQRAy3ZxzZxEWA0sa3TAcn+aCKcwPC8Su KPW3HFKNc7gnzCpt1eBYrrfZ+h3nEHvwQ2WiG7Drx5uCeEboBM2dnUzK91H1IjBG G9rS8db3NOdLd5divmuzlRX11S6rZYHe/w3LSBXTsZ+D1IjUvh3kp6SrAgMBAAGj ggJKMIICRjAdBgNVHQ4EFgQUiVBAhpu0Ir5sIDzJGuIQpspn8RUwHwYDVR0jBBgw FoAUQHaCVSTSxm0uEENv5l6T6MG9SjcwDgYDVR0PAQH/BAQDAgeAMH4GCCsGAQUF BwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBv c2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL1FIYUNWU1RT eG0wdUVFTnY1bDZUNk1HOVNqYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu Y29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1MGJlYzkyNjEv NzEwODAwZDAtYTU0NC00ZmU5LWFiZDQtMzY5YzgyZmFiYmIzLnJvYTCBlQYDVR0f BIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFt YXpvbmF3cy5jb20vdm9sdW1lLzA4YzJmMjY0LTIzZjktNDlmYi05ZDQzLWY4YjUw YmVjOTI2MS83YmExNzg2My1hNjEzLTQxOTctOWVkNS1iZWRhNmE4OTg2OWYuY3Js MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAkBtr+CDANBgkqhkiG9w0BAQsFAAOCAQEABmUUWY6eVCsC3IYkokiI QoCtUmMxubMXHBjZigpUZ7g2AA6YE7trci8slZGqnCfkrIMIy6Q36afqMwc+r4ot Wlom/VpAXSxYtm0Hjl/1HK+qSylgdFJTiljIZh0Toz+41HbzrkgSLNx/u/sxq4So jIjIDi2tWTgzTE68oOEQ6hgZCu+U9Kje9qcuqsubVLJOcYlEi8lVeKIz1KTF1yim ZcZDjHZPZ5UMzRqg8mkjod8UU6uHkifNgjpEcV4zBeFYLm4rvrXJSwJRUjQp7va4 FddNOd8n9Uy5z5E4MNpJ6iWuGwq+TOfuP9QsQvjQt/3cRk4DrI0Kn3Bx+Ctn/hfv rg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:07:59 2025 by rpki-client